Name: Needle in a Haystack – Getting to Attribution in Control Systems
Start: 2012-02-22T18:00:00Z
End: 2012-02-22T19:14:02.000Z
Location: BrightTALK
Rating: 0

Tripwire’s powerful IT security and compliance automation solutions help businesses and government agencies take control of their IT infrastructure.

Attendees will learn:
•How they can detect key indicators of a threat earlier in the threat kill chain to avoid or limit the financial damage as well as the damage to their reputation.
•The importance of end point security across your business critical systems, including your POS systems.
•How implementing critical security controls can make you an unattractive target.

Retail Security – Closing The Threat Gap

In this webcast, we will:

•Discuss how to translate security information into specific and scalable action
•Describe the remediation plan for the controls, starting with the Top 5 
•Discuss how the Council on CyberSecurity uses a community approach to this translation problem to create and sustain the Critical Security Controls. 
•Discuss how the community will help advise and support your risk management efforts with a formalized framework

How the 20 Controls Address Real Threats

In this webcast we will show:

The  Heartbleed vulnerability in detail, how it occurred with examples of how it can be used against your organization
How you can identify your business exposure and what systems are vulnerable
How Tripwire’s solutions work together to help you close the detection, remediation and prevention gaps around Heartbleed

Heartbleed Outpatient Care: Steps for Secure Recovery

In this webinar we will:
 
• Discuss how human resources, legal and IT can work together to help prevent insider threats before they become a problem. 
• Identify risk indicators with employee attitudes and behavior and how it correlates to their patterns of activity on your network.  
• Show how you can use log intelligence and security analytics to automate actions and alerts and rapid reporting and forensics.

Insider Threat Kill Chain: Detecting Human Indicators of Compromise

In this webcast we will show:
1. The  Heartbleed vulnerability in detail, how it occurred with examples of how it can be used against your organization
2. How you can identify your business exposure and what systems are vulnerable
3. How Tripwire’s solutions work together to help you close the detection, remediation and prevention gaps around  Heartbleed

Heartbleed Outpatient Care: Steps for Secure Business Recovery

Tim Masey, Director of Enterprise Information Security at AAA, will share his company’s PCI journey.
In this Q&A-style webcast you will learn:
•How to move your PCI efforts from a small tactical implementation to a key critical component of your security posture.
•How to align your compliance efforts with the needs of the business, which will allow you to gain more resources—financial, human and technical.
•How to utilize security and policy driven dashboards to get your management’s support.

AAA: Getting Roadside Assistance from Tripwire

Jason Clark, CISSP, Tripwire Technical Manager (Middle East), will be sharing how to achieve trust after a data breach in this UK focused webcast, which will cover crucial questions such as:
•Which systems can be trusted?
•What is the extent of the compromise?
•How quickly can you attain situational awareness?
Jason will also provide participants with a practical, five-step approach to restore trust in your critical systems after a data breach. Register today to join us for this informative webcast.

How to Restore Trust After a Breach – Middle East

Tripwire’s Senior Pre-Sales Consultant, Michael Rohse (DACH), will be sharing how to achieve trust after a data breach in this UK focused webcast, which will cover crucial questions such as:
•Which systems can be trusted?
•What is the extent of the compromise?
•How quickly can you attain situational awareness?
Michael will also provide participants with a practical, five-step approach to restore trust in your critical systems after a data breach. Register today to join us for this informative webcast.

How to Restore Trust After a Breach – DACH

In this webcast, Joel Barnes, UK Senior Systems Engineer, will share how best to achieve trust after a data breach. He’ll cover crucial questions, such as: Which systems can be trusted? What is the extent of the compromise? How quickly can you attain situational awareness? He will also provide participants with an approach to restore trust in your critical systems after a data breach, following five steps:
1.Know what you have and prioritize by risk levels
2.Define what “good” looks like
3.Harvest system state information from your production systems
4.Perform a reference node variance analysis to identify compromised systems
5.Remove suspect systems from the environment and return to a trustworthy state
Join us for this informative webcast!

How to Restore Trust After a Breach - UK

In this webcast, Dwayne Melancon, Tripwire’s Chief Technology Officer, will share how best to achieve trust after a data breach.  He’ll cover crucial questions, such as: Which systems can be trusted?  What is the extent of the compromise? How quickly can you attain situational awareness?  He will also provide participants with an approach to restore trust in your critical systems after a data breach, following five steps:
1.Know what you have and prioritize by risk levels
2.Define what “good” looks like
3.Harvest system state information from your production systems
4.Perform a reference node variance analysis to identify compromised systems
5.Remove suspect systems from the environment and return to a trustworthy state
Join us for this informative webcast!

How to Restore Trust After a Breach

As a former QSA and currently a security analyst at The 451 Research, Adrian Sanabria will share a frank viewpoint of how the new version of Payment Card Industry standard will affect your organization. 

Join us for this webcast and you will:

•Obtain the point of view from the QSA
•Learn how PCI DSS 3.0 may affect your Report on  Compliance      
•Understand the job of a QSA and the qualities of a good QSA
•Learn how Tripwire solutions can make the job of the QSA and the PCI audit process easier

Preparing for PCI DSS v3.0: Advice from the QSA

Charles Kolodgy, Research Vice President for IDC's Security Products service, and Edward Smith, Product Marketing Manager at Tripwire, will discuss:

•Integrating Vulnerability Management with other security controls to improve compliance and security posture
•Leveraging Vulnerability Management beyond the server room to reduce risk across the entire enterprise
•Combining business intelligence from Vulnerability Management with other security controls to make better business decisions

Vulnerability Voodoo: The Convergence of Foundational Security Controls

Join Jeff Hall, CISSP, CISM, CGEIT, PCI-QSA, PCIP and Senior Security Consultant at FishNet Security and Steve Hall, Director of PCI Solutions at Tripwire, to learn how PCI DSS 3.0 will impact your organization and what you need to do:
•  Understanding key themes for PCI DSS 3.0
•  Making sense of the new requirements, guidance, and clarifications 
•  What’s changed, what hasn’t, and what will affect merchants and services providers the most
•  Key considerations to ensure you don’t shortchange your audit preparations

PCI DSS 3.0:  Don't Shortchange Your PCI Readiness

Gavin Millard, Tripwire's EMEA Technical Director, will discuss why effective vulnerability management is critical to measuring, managing and reducing your attack surface and how to gain insight from the information Tripwire can provide.
Topics covered will include
• Why asset discovery is fundamental to understanding the size and scope of your extended infrastructure
• How to gain full visibility into where the most vulnerable areas of the infrastructure reside through Tripwire’s market leading scoring approach
• How to prioritise the hosts within the infrastructure to quickly reduce the risk and gain control of your attack surface
• What reporting works with management to connect the value of vulnerability management to the business goals of the organisation

Reducing Risk Through Effective Vulnerability Management

Often during budget cycles, we’re handed a number – no choice or negotiation – this is just all you get. This year however, there are some positive trends in security budget research from Gartner, IDC, Ponemon, and CEB. 

This webcast will show you how to maximize your leverage of increased security spending, list the top three security budget mistakes and offer ideas that may help connect security to your organization’s bottom line.

Tune in to hear:
•  Positive security budget trends and how to use them to increase your 2014 budget 
•  Technology trends and their impact on your security budget
•  Budget presentation ideas for the C-Suite

2014 IT Security Budget Mistakes to Avoid

Lamar Bailey, Tripwire's Director of the Vulnerability & Exposure Research team will provide you with a better understanding of:
- Why is the Tripwire Vulnerability scoring so granular?
- How do we arrive at those scores  and why not just use CVSS?
- What do you mean by business context of measuring risk?
- How will it help us be more efficient managing risk?

Avoiding Vulnerability Info Overload:  How to Prioritize and Respond to Risk

Please accept our apologies for the technical difficulties encountered with this webinar on Monday.  This is now due to take place on Friday 4th October.

This hour-long webinar, hosted by Gavin Millard, Tripwire's EMEA Technical Director, will discuss:
•       Using the SANS critical controls to understand and reduce your infrastructures attack surface
•       Profiles of the current ‘threat actors’ and how the 20 CSC can help thwart the most common threats
•       How to measure the effectiveness of controls through metrics to ensure success and investment from the business

Using the SANS Top 4 Controls to Measure and Reduce your Attack Surface

Join Rick Holland, Forrester Senior Analyst, and Edward Smith, Product Marketing Manager at Tripwire, to learn how to go beyond scanning to a strategic vulnerability management program.
In this webcast you’ll learn how a strategic VM program can help you:
• Go from counting vulnerabilities to accurately measuring, managing, and communicating risk.
• Understand and classify the assets and vulnerabilities in your environment
• Triage remediation efforts for more efficient operations
 
We hope you will join us.

Strategic Vulnerability Management: Go Beyond Scanning

The nation’s control systems support critical infrastructure like water treatment plants and the bulk electricity system. When they are compromised, the stakes can be extremely high, potentially even including loss of life. In this webcast, SCADA security expert Matthew Luallen describes the risks to control systems and discusses with leading security vendors how we can protect them.

Needle in a Haystack – Getting to Attribution in Control Systems

SCADA

Security

Configuration

Assessment

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Needle in a Haystack – Getting to Attribution in Control Systems

Presented by

About this talk

More from this channel